c70043f842
automatic module_metadata_base.json update
2024-12-18 20:51:38 +00:00
7ddffc790c
Merge pull request #19460 from gardnerapp/game_overlay
...
Land #19460 , CVE-2023-2640, CVE-2023-32629 Game Overlay Ubuntu Privilege Escalation
2024-12-18 14:44:57 -06:00
b7f477172f
Update docs to reflect recent changes
2024-12-18 14:08:10 -06:00
37eaa29df6
automatic module_metadata_base.json update
2024-12-18 12:41:54 +00:00
2001469d02
Merge pull request #19742 from sjanusz-r7/TeamCity-is-capitalized
...
Capitalize TeamCity correctly
2024-12-18 12:35:12 +00:00
531ed162db
Land #19733 , exploit module for CVE-2022-40471 - unauthenticated RCE
2024-12-18 12:44:34 +01:00
59229ee612
Update payload name, fix payload escapes & quotation, add unix cmd support
2024-12-17 16:52:24 -06:00
f2d723d1d0
Modified the code logic as instructed by the reviewer & removed the instance variable
2024-12-17 21:39:30 +05:30
a99fae420a
Capitalize TeamCity correctly
2024-12-17 14:27:41 +00:00
f5329a71df
Added the DELETE_FILES option to delete leftover files by the exploit with the FileDropper mixin
2024-12-17 17:00:06 +05:30
4c51165ec6
Made necessary changes as mentioned by the reviewer
2024-12-17 16:07:58 +05:30
4a13b09767
Land #19719 , Fix bug in fetch payload when FETCH_DELETE set to true
2024-12-17 08:42:47 +01:00
703ed44357
automatic module_metadata_base.json update
2024-12-16 18:46:51 +00:00
065cee8698
Merge pull request #19739 from sjanusz-r7/add-ignorelist-to-local-exploit-suggester-datastore-options
...
Add ignorelist to local exploit suggester datastore options
2024-12-16 18:40:41 +00:00
70d5430ba8
Add ignorelist to local exploit suggester datastore options
2024-12-16 17:51:38 +00:00
92c97b002a
automatic module_metadata_base.json update
2024-12-16 15:34:14 +00:00
6f9982db54
Land #19647 Added module for WSO2 API Manager RCE
...
Adds an exploit module for a vulnerability in the 'Add API Documentation' feature of WSO2 API Manager and allows malicious users with specific permissions to upload arbitrary files to a user-controlled server location. This flaw allows for RCE on the target system.
2024-12-16 07:27:23 -08:00
88347ad2d4
automatic module_metadata_base.json update
2024-12-16 12:13:37 +00:00
7878d9fd3b
Land #19735 , Update the CachedSize for reverse_http and reverse_http payloads
...
Land #19735 , Update the CachedSize for reverse_http and reverse_http payloads
2024-12-16 13:07:13 +01:00
b33b01e0d8
Update the CachedSize for reverse_http and reverse_http payloads
2024-12-16 12:48:57 +01:00
0068857d78
Merge pull request #19718 from sjanusz-r7/add-rpc-token
...
Keep track of RPC token per-thread
2024-12-16 11:08:22 +00:00
d196591845
Modified documentation
2024-12-16 15:47:30 +05:30
06528abe05
Added documentation
2024-12-16 15:33:29 +05:30
eb5385a23d
msftidy & Rubocop Fixes
2024-12-16 14:45:04 +05:30
ebf73798a8
Landing #19726 , fixed incorrect processing of HTTP User Agent parameter in x64 reverse HTTP payload (Windows)
2024-12-16 10:11:32 +01:00
08519defc7
RuboCop Fixes
2024-12-16 11:36:23 +05:30
8af31e6b01
updated the inline asm to use User Agent
2024-12-14 15:39:16 -05:00
0334109994
Streamline command
2024-12-13 16:43:17 -06:00
50b12596a6
automatic module_metadata_base.json update
2024-12-13 19:54:06 +00:00
ab55286e0b
Land #19721 , Fix version in CVE-2020-0668 module
...
Fix version check for cve-2020-0668 Service Tracing
2024-12-13 20:47:17 +01:00
594946db47
Add sleep to prevent race condition, remove unneeded spaces
2024-12-13 10:31:10 -06:00
985444e5af
Land #19715 , Update README.md
2024-12-13 16:21:38 +00:00
051a46a781
Implements feedback
2024-12-13 16:10:01 +00:00
2edbc6a134
Land #19546 , Improve database module cache performance
2024-12-13 15:31:08 +00:00
90066b3b45
Land #19660 , Make enum options case normalizing
2024-12-13 12:00:43 +00:00
852bb8bfe2
automatic module_metadata_base.json update
2024-12-13 02:25:39 +00:00
afd3d0b66c
Land #19713 , Add exploit module for WP Time Capsule RCE
...
This exploits a Remote Code Execution (RCE) vulnerability identified as CVE-2024-8856 in the WordPress WP Time Capsule plugin (versions ≤ 1.22.21). This vulnerability allows unauthenticated attackers to upload and execute arbitrary files due to improper validation within the plugin.
2024-12-12 18:19:09 -08:00
add7c7b177
Remove potential NoMethodError in fail_with call
2024-12-12 18:04:10 -08:00
48ed31f323
Fix version check
2024-12-12 17:11:53 -06:00
e06dd6deea
Update documentation
2024-12-12 22:10:11 +01:00
9c8db05dc6
Update modules/exploits/multi/http/wp_time_capsule_file_upload_rce.rb
...
Co-authored-by: Julien Voisin <jvoisin@users.noreply.github.com >
2024-12-12 22:06:04 +01:00
25dcd93d0a
Update db/README.md
...
Co-authored-by: Arne De Herdt <arne_deherdt@rapid7.com >
2024-12-12 10:53:57 -08:00
6ed734e52b
Land #19720 , Update docs dependencies
2024-12-12 17:17:50 +00:00
a1ce949b50
Update docs dependencies
2024-12-12 16:19:33 +00:00
2faa33ed8e
Fix bug in the way we are executing fetch payload when FETCH_DLETE is set to true
2024-12-12 09:08:52 -06:00
686a463a87
Keep track of RPC token per-thread
2024-12-12 12:57:20 +00:00
2355ab546d
Bump version of framework to 6.4.41
2024-12-12 03:32:50 -06:00
5f4fbf1931
automatic module_metadata_base.json update
2024-12-12 01:06:56 +00:00
c7f7cfd848
Land #19656 Close ssh session on error
2024-12-11 17:00:17 -08:00
31930f47dd
Merge pull request #19700 from jheysel-r7/fix_send_request_cgi_bang
...
Fix query param in reconfig_redirect_opts!
2024-12-11 23:30:51 +00:00
jenkins-metasploit